Kerberos 5@1.7 Security Vulnerabilities and Issues — Kerberos 5@1.7 CVE List

Lucene search

MitKerberos 51.7

7 matches found

CVE•added 2010/12/02 4:22 p.m.•96 views

CVE-2010-1323

MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message v...

3.7CVSS5.5AI score0.02739EPSS

CVE•added 2010/01/13 7:30 p.m.•70 views

CVE-2009-4212

Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext w...

10CVSS7.2AI score0.20912EPSS

CVE•added 2010/12/02 4:22 p.m.•70 views

CVE-2010-1324

MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unkeyed PAC checksum, or (3) a KrbFastArm...

4.3CVSS5.7AI score0.03672EPSS

CVE•added 2010/02/22 1:0 p.m.•60 views

CVE-2010-0283

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2, and 1.8 alpha, allows remote attackers to cause a denial of service (assertion failure and daemon crash) via an invalid (1) AS-REQ or (2) TGS-REQ request.

7.8CVSS6.2AI score0.03492EPSS

CVE•added 2010/12/02 4:22 p.m.•59 views

CVE-2010-4021

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."

2.1CVSS5.9AI score0.0047EPSS

CVE•added 2010/03/25 10:30 p.m.•54 views

CVE-2010-0628

The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in the SPNEGO GSS-API functionality in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2 and 1.8 before 1.8.1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via an invalid packet that t...

5CVSS6.3AI score0.01037EPSS

CVE•added 2010/04/22 2:30 p.m.•50 views

CVE-2010-1320

Double free vulnerability in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a request associated with (1) renewal or (2) ...

4CVSS6.9AI score0.14121EPSS